SCMBANKER Malware Uses ClickFix Lures to Target Mexican Banking Users

Read full story on The Hacker News
Share
SCMBANKER Malware Uses ClickFix Lures to Target Mexican Banking Users
AI disclosure

Summary

A new banking fraudulent operation is targeting customers of Mexican banks, fintech, payment processors, and cryptocurrency exchanges using ClickFix lures. The activity cluster, tracked by Elastic Security Labs under the moniker REF6045, involves infecting victims through fake CAPTCHA verification pages that deceive them into running a malicious command that installs a PowerShell toolkit dubbed

Original reporting

Open original source

Related coverage

Read full article on The Hacker News

Get the AFBytes Brief

Major stories, AI-assisted analysis, and what to watch next. Free, monthly, unsubscribe anytime.